Submit #757586: DataLinkDC dinky <=1.2.5 arbitrary file writesinfo

Titel	DataLinkDC dinky <=1.2.5 arbitrary file writes
Beschreibung	A path traversal vulnerability exists in the Dinky platform's Git project management functionality. Attackers with Git project creation permissions can craft malicious project names containing path traversal sequences (e.g., ../../evil), allowing arbitrary file writes to the server filesystem when projects are created or built.
Quelle	⚠️ https://github.com/AnalogyC0de/public_exp/issues/5
Benutzer	Ana10gy (UID 93358)
Einreichung	13.02.2026 03:28 (vor 4 Monaten)
Moderieren	23.02.2026 18:50 (11 days later)
Status	Akzeptiert
VulDB Eintrag	347409 [DataLinkDC dinky bis 1.2.5 Project Name GitRepository.java getProjectDir projectName Directory Traversal]
Punkte	18

Might our Artificial Intelligence support you?

Check our Alexa App!